>>SELinux Mailing List

Contents

Overview

What's New

Frequently Asked Questions

Background

Documentation

License

Download

Participating

Mail List

Archive Summary

Archive by Thread

Archive by Author

Archive by Date

Archive by Subject

Remaining Work

Contributors

Related Work

Press Releases

how to add new user roles

From: Steve Eckmann <eckmann_at_computer.org>
Date: Thu, 05 Jul 2001 12:05:35 -0600

I've read the "Security Policy Configuration" paper and looked at the policy configuration files, but it isn't obvious what is needed to add new user roles with separate domains. I guess I need to create a file like user.te for each new domain, possibly containing just a new type definition and a user_domain() "call", plus whatever new rules apply to each new domain.

Can someone share a simple new user domain they've developed, or at least the steps needed to add a new domain and role? For example, suppose I want two new domains A and B just like user except that A can read and execute B files, and B can read but not execute A files.

Steve

--
You have received this message because you are subscribed to the selinux list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.

Received on Thu 5 Jul 2001 - 14:17:43 EDT

This message: [ Message body ]
Next message: Stephen Smalley: "Re: how to add new user roles"
Previous message: Stephen Smalley: "Re: checkpolicy fails"
Next in thread: Stephen Smalley: "Re: how to add new user roles"
Reply: Stephen Smalley: "Re: how to add new user roles"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

This archive was generated by hypermail 2.2.0 on Wed 11 Jun 2008 - 08:10:25 EDT